Burp Suite Tools

Burp Suite contains various tools for performing different testing tasks. The tools operate effectively together, and you can pass interesting requests between tools as your work progresses, to carry out different actions.

UsingBurp_BurpTools_1

The Burp Target tool contains detailed information about your target applications, and lets you drive the process of testing for vulnerabilities.

UsingBurp_BurpTools_2

Burp Proxy is an intercepting web proxy that operates as a man-in-the-middle between the end browser and the target web application. It lets you intercept, inspect and modify the raw traffic passing in both directions.

UsingBurp_BurpTools_3

Burp Spider is an intelligent application-aware web spider that can crawl an application to locate its content and functionality.

UsingBurp_BurpTools_4

Burp Scanner is an advanced web vulnerability scanner, which can automatically discover numerous types of vulnerabilities.

UsingBurp_BurpTools_5

Burp Intruder is a powerful tool for carrying out automated customized attacks against web applications. It is highly configurable and can be used to perform a wide range of tasks to make your testing faster and more effective.

UsingBurp_BurpTools_6

Burp Repeater is a simple tool for manually manipulating and reissuing individual HTTP requests, and analyzing the application's responses.

UsingBurp_BurpTools_7

Burp Sequencer is a sophisticated tool for analyzing the quality of randomness in an application's session tokens or other important data items that are intended to be unpredictable.

UsingBurp_BurpTools_8

Burp decoder is a useful tool for performing manual or intelligent decoding and encoding of application data.

UsingBurp_BurpTools_9

The Burp Comparer is a handy utility for performing a visual "diff" between any two items of data, such as pairs of similar HTTP messages.

UsingBurp_BurpTools_10

Burp Extender allows you to load Burp extensions, to extend Burp's functionality using your own or third-party code.